Answer-first summary for fast verification
Answer: Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
The correct solution must ensure bi-directional DNS resolution between AWS and the on-premises environments, support multiple VPCs, and allow for gradual migration of workloads. Option A meets these requirements by configuring private hosted zones for each application VPC, which allows for internal DNS resolution within AWS. It also sets up Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC to facilitate DNS queries between AWS and on-premises environments. By defining Route 53 Resolver rules to forward requests for on-premises domains to the on-premises DNS resolver and configuring the on-premises DNS servers to forward cloud domains to the Route 53 inbound endpoints, it ensures bi-directional DNS resolution. Sharing the Route 53 Resolver rules and associating the private hosted zones with the egress VPC using AWS Resource Access Manager (RAM) allows for centralized management and sharing of DNS configurations across multiple accounts, which is essential for a multi-VPC setup and gradual migration.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
An insurance company is migrating workloads from its on-premises data center to multiple VPCs in the AWS Cloud. The migration will occur in phases, with workloads having dependencies on each other. The company needs end-to-end domain name resolution and bi-directional DNS resolution between AWS and the on-premises environment.
Which solution fulfills these requirements?
A
Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
B
Configure a public hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC. and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
C
Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPDefine Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPand share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 outbound endpoints.
D
Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the Route 53 outbound rules with the application VPCs, and share the private hosted zones with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.